Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/DgF8M4P1O_MtI4xO4q3sxjCkYKk.roa
File: DgF8M4P1O_MtI4xO4q3sxjCkYKk.roa (raw, json)
Hash identifier: POKYf4S82tZNeNDgUGZMJwxgH/a7Myk60V+mfqrPhkk=
Subject key identifier: 0E:01:7C:33:83:F5:3B:F3:2D:23:8C:4E:E2:AD:EC:C6:30:A4:60:A9
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 018E9E4CED07518EF758F7988395E0D43A98
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/DgF8M4P1O_MtI4xO4q3sxjCkYKk.roa
Signing time: Tue 02 Apr 2024 10:13:45 +0000
ROA not before: Tue 02 Apr 2024 10:13:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47690
IP address blocks: 45.43.136.0/21 maxlen: 21
45.43.136.0/24 maxlen: 24
45.43.137.0/24 maxlen: 24
45.43.138.0/24 maxlen: 24
45.43.139.0/24 maxlen: 24
45.43.140.0/24 maxlen: 24
45.43.141.0/24 maxlen: 24
45.43.142.0/24 maxlen: 24
45.43.143.0/24 maxlen: 24
45.43.144.0/24 maxlen: 24
45.43.145.0/24 maxlen: 24
45.43.146.0/24 maxlen: 24
45.43.148.0/24 maxlen: 24
45.43.149.0/24 maxlen: 24
45.43.150.0/24 maxlen: 24
45.43.151.0/24 maxlen: 24
45.43.152.0/24 maxlen: 24
45.43.153.0/24 maxlen: 24
45.43.154.0/24 maxlen: 24
45.43.155.0/24 maxlen: 24
45.43.156.0/24 maxlen: 24
45.43.157.0/24 maxlen: 24
45.43.158.0/24 maxlen: 24
45.43.159.0/24 maxlen: 24
45.43.160.0/24 maxlen: 24
45.43.161.0/24 maxlen: 24
45.43.162.0/24 maxlen: 24
45.43.172.0/22 maxlen: 22
64.137.16.0/24 maxlen: 24
104.222.176.0/24 maxlen: 24
104.222.177.0/24 maxlen: 24
104.222.178.0/24 maxlen: 24
104.222.179.0/24 maxlen: 24
104.222.180.0/24 maxlen: 24
104.222.181.0/24 maxlen: 24
104.222.182.0/24 maxlen: 24
104.222.183.0/24 maxlen: 24
104.222.189.0/24 maxlen: 24
104.233.8.0/24 maxlen: 24
104.233.9.0/24 maxlen: 24
104.233.10.0/24 maxlen: 24
104.233.11.0/24 maxlen: 24
104.233.22.0/24 maxlen: 24
104.233.23.0/24 maxlen: 24
104.233.27.0/24 maxlen: 24
104.233.28.0/24 maxlen: 24
104.233.29.0/24 maxlen: 24
104.233.30.0/24 maxlen: 24
104.233.31.0/24 maxlen: 24
104.233.32.0/24 maxlen: 24
104.233.33.0/24 maxlen: 24
104.233.34.0/24 maxlen: 24
104.233.35.0/24 maxlen: 24
104.233.36.0/24 maxlen: 24
104.233.37.0/24 maxlen: 24
104.233.38.0/24 maxlen: 24
104.233.39.0/24 maxlen: 24
104.233.40.0/24 maxlen: 24
104.233.41.0/24 maxlen: 24
104.233.42.0/24 maxlen: 24
104.233.43.0/24 maxlen: 24
104.233.44.0/24 maxlen: 24
104.233.45.0/24 maxlen: 24
104.233.46.0/24 maxlen: 24
104.233.47.0/24 maxlen: 24
104.233.56.0/24 maxlen: 24
104.233.57.0/24 maxlen: 24
104.233.58.0/24 maxlen: 24
104.233.59.0/24 maxlen: 24
104.238.6.0/24 maxlen: 24
104.238.11.0/24 maxlen: 24
104.238.12.0/24 maxlen: 24
104.238.13.0/24 maxlen: 24
104.238.15.0/24 maxlen: 24
104.238.16.0/24 maxlen: 24
104.238.17.0/24 maxlen: 24
104.238.18.0/24 maxlen: 24
104.238.21.0/24 maxlen: 24
104.238.22.0/24 maxlen: 24
104.238.23.0/24 maxlen: 24
104.238.24.0/24 maxlen: 24
104.238.25.0/24 maxlen: 24
104.238.27.0/24 maxlen: 24
104.238.28.0/24 maxlen: 24
104.238.30.0/24 maxlen: 24
104.238.31.0/24 maxlen: 24
104.239.8.0/24 maxlen: 24
104.239.9.0/24 maxlen: 24
104.239.12.0/24 maxlen: 24
104.239.14.0/24 maxlen: 24
104.239.15.0/24 maxlen: 24
104.239.29.0/24 maxlen: 24
104.239.45.0/24 maxlen: 24
104.239.46.0/24 maxlen: 24
104.239.48.0/24 maxlen: 24
104.239.54.0/24 maxlen: 24
104.239.55.0/24 maxlen: 24
104.239.56.0/24 maxlen: 24
104.239.57.0/24 maxlen: 24
104.239.58.0/24 maxlen: 24
104.239.59.0/24 maxlen: 24
104.239.60.0/24 maxlen: 24
104.239.61.0/24 maxlen: 24
104.239.62.0/24 maxlen: 24
104.239.63.0/24 maxlen: 24
104.239.64.0/24 maxlen: 24
104.239.65.0/24 maxlen: 24
104.239.66.0/24 maxlen: 24
104.239.67.0/24 maxlen: 24
104.239.72.0/24 maxlen: 24
104.239.74.0/24 maxlen: 24
104.239.79.0/24 maxlen: 24
104.239.83.0/24 maxlen: 24
104.239.87.0/24 maxlen: 24
104.239.89.0/24 maxlen: 24
104.239.99.0/24 maxlen: 24
104.239.100.0/24 maxlen: 24
104.239.102.0/24 maxlen: 24
104.239.103.0/24 maxlen: 24
104.239.109.0/24 maxlen: 24
104.239.110.0/24 maxlen: 24
104.239.127.0/24 maxlen: 24
104.249.8.0/24 maxlen: 24
104.249.9.0/24 maxlen: 24
104.249.10.0/24 maxlen: 24
104.249.11.0/24 maxlen: 24
104.249.12.0/24 maxlen: 24
104.249.13.0/24 maxlen: 24
104.249.14.0/24 maxlen: 24
104.249.15.0/24 maxlen: 24
104.249.16.0/24 maxlen: 24
104.249.17.0/24 maxlen: 24
104.249.18.0/24 maxlen: 24
104.249.19.0/24 maxlen: 24
104.249.20.0/24 maxlen: 24
104.249.21.0/24 maxlen: 24
104.249.22.0/24 maxlen: 24
104.249.23.0/24 maxlen: 24
104.249.40.0/24 maxlen: 24
104.249.42.0/24 maxlen: 24
104.249.43.0/24 maxlen: 24
104.249.44.0/24 maxlen: 24
104.249.45.0/24 maxlen: 24
104.249.46.0/24 maxlen: 24
104.249.47.0/24 maxlen: 24
104.249.48.0/24 maxlen: 24
104.249.49.0/24 maxlen: 24
104.249.50.0/24 maxlen: 24
104.249.51.0/24 maxlen: 24
104.249.52.0/24 maxlen: 24
104.249.53.0/24 maxlen: 24
104.249.54.0/24 maxlen: 24
216.173.64.0/22 maxlen: 22
216.173.77.0/24 maxlen: 24
216.173.90.0/24 maxlen: 24
216.173.91.0/24 maxlen: 24
216.173.92.0/24 maxlen: 24
216.173.93.0/24 maxlen: 24
216.173.94.0/24 maxlen: 24
216.173.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Apr 2024 12:35:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:9e:4c:ed:07:51:8e:f7:58:f7:98:83:95:e0:d4:3a:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Apr 2 10:13:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0e017c3383f53bf32d238c4ee2adecc630a460a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:14:b5:a1:05:c1:6b:02:a1:80:4b:e5:ef:76:
57:22:92:68:06:b6:cf:f9:02:06:82:69:10:13:10:
62:7a:5f:17:a5:7b:42:b2:7a:b8:f8:3d:50:29:41:
9c:69:c9:70:22:8f:ba:ad:09:ce:7d:63:31:3f:b8:
79:d1:eb:fb:19:6a:3f:83:c5:4a:8b:df:f7:36:45:
43:4d:ce:24:6e:b2:f8:cd:a5:1d:80:71:2c:f3:6a:
ae:10:b2:a7:d1:33:99:09:0b:f0:5e:4a:95:33:71:
a7:f6:16:64:40:31:b1:a6:03:b9:81:9e:20:14:b6:
cd:c2:97:2e:ed:44:4b:79:14:92:9e:90:59:60:df:
da:0a:7c:7c:8d:33:66:28:0d:7d:3e:3d:bb:0b:d4:
08:d7:31:b1:80:e0:fb:7b:09:71:8d:f2:da:ae:70:
d0:12:5b:8f:fd:2b:fc:5f:6b:4e:3f:29:12:32:b1:
61:74:b6:97:24:64:ec:59:e3:c0:40:8e:4e:42:a8:
b2:ba:c8:5f:95:e5:18:70:71:d8:26:b8:07:e4:54:
d7:bf:f1:63:b9:f4:97:dc:f8:08:ca:34:56:25:dc:
c9:41:a5:4b:c9:ad:b4:e6:a0:c7:77:b6:26:d4:50:
7f:a8:dd:48:39:09:08:be:b1:13:f1:af:93:92:31:
c9:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:01:7C:33:83:F5:3B:F3:2D:23:8C:4E:E2:AD:EC:C6:30:A4:60:A9
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/DgF8M4P1O_MtI4xO4q3sxjCkYKk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.43.136.0-45.43.146.255
45.43.148.0-45.43.162.255
45.43.172.0/22
64.137.16.0/24
104.222.176.0/21
104.222.189.0/24
104.233.8.0/22
104.233.22.0/23
104.233.27.0-104.233.47.255
104.233.56.0/22
104.238.6.0/24
104.238.11.0-104.238.13.255
104.238.15.0-104.238.18.255
104.238.21.0-104.238.25.255
104.238.27.0-104.238.28.255
104.238.30.0/23
104.239.8.0/23
104.239.12.0/24
104.239.14.0/23
104.239.29.0/24
104.239.45.0-104.239.46.255
104.239.48.0/24
104.239.54.0-104.239.67.255
104.239.72.0/24
104.239.74.0/24
104.239.79.0/24
104.239.83.0/24
104.239.87.0/24
104.239.89.0/24
104.239.99.0-104.239.100.255
104.239.102.0/23
104.239.109.0-104.239.110.255
104.239.127.0/24
104.249.8.0-104.249.23.255
104.249.40.0/24
104.249.42.0-104.249.54.255
216.173.64.0/22
216.173.77.0/24
216.173.90.0-216.173.95.255
Signature Algorithm: sha256WithRSAEncryption
55:56:bb:49:d0:fa:70:79:e3:de:a3:21:c9:57:77:f7:e8:22:
ff:8c:21:9f:08:60:94:01:17:30:60:6f:60:c1:8d:32:02:e0:
e0:a5:a4:a9:d1:c1:94:04:71:b4:90:8a:c4:fb:16:b9:89:88:
d8:8a:21:60:4d:dd:2e:f8:62:a8:f9:b3:f6:d8:89:56:b6:49:
69:be:8d:99:8d:09:5b:3f:bb:6f:d8:ad:e0:0f:f2:37:97:a2:
16:3d:eb:5c:d4:de:d0:21:d3:07:af:3c:63:f7:68:40:f4:59:
38:70:7b:3d:8f:e2:4d:0d:88:8d:17:d1:ab:2a:49:58:41:1f:
bb:d8:cf:5b:1a:9d:54:bd:c4:b8:de:e5:43:5f:be:69:6f:c5:
58:8c:19:0e:ee:46:69:e9:f1:76:0b:7f:0b:34:1c:1d:b1:43:
05:eb:ff:af:0f:21:74:c6:07:bb:07:c9:88:97:31:12:67:21:
60:7d:5d:28:d8:6f:4d:9d:bf:aa:a7:52:4d:06:02:37:9c:07:
fd:c6:10:ee:96:d3:57:0c:d9:af:26:56:fc:06:bf:b1:80:8f:
c1:ff:3f:b7:74:48:e5:4a:6f:79:cf:4e:2f:57:33:c6:0a:38:
ec:59:64:e7:53:4c:9a:47:2f:4a:23:e4:7f:bf:27:af:cb:ca:
64:7c:d9:ed
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Apr 2 17:38:55 2024 by rpki-client on console-ams.rpki-client.org